Profile

CommunityPlatform_1350x900.jpg

Nicole McLain

Edit My Profile

My Content

1 to 12 of 12 total

RE: Student and Faculty Email Forwarding - Google and Yahoo Changes

Posted By Nicole McLain 02-22-2024 02:15:33 PM
Found In Egroup: Cybersecurity \ view thread
We have a lot of users that autoforward externally as well. Technically we disallow it, but enforcement has never been something we have the backing for. If we were to be blacklisted from sending to gmail, I imagine that would give us the ability to enforce .....for now we are crossing our fingers that ...

RE: Security Awareness Training for Students

Posted By Nicole McLain 01-05-2024 01:05:04 PM
Found In Egroup: Cybersecurity \ view thread
We are in process for this as well. For students, I think we have landed on doing mandatory training at the beginning of the school year as part of the required orientation. Failure to complete training will result in them not being able to register. We only recently started sending phishing simulations ...

Control of removable media (flash drives)

Posted By Nicole McLain 12-13-2023 10:53:27 AM
Found In Egroup: Cybersecurity \ view thread
I am hoping to get some input on what / how everyone is going about controlling what removable storage media can do on University owned assets. Do you require users register their USBs with IT and have them on some kind of "allow list"? Do you require USBs be encrypted to move data to them? Do ...

RE: Google Drive/Forms phishing

Posted By Nicole McLain 04-26-2023 11:31:40 AM
Found In Egroup: Cybersecurity \ view thread
This is a super icky one and we have tried multiple things in Proofpoint to try and block these but have not been successful yet. The best thing that we have done is run an educational campaign about this type of email, which has gotten us good results as far as people not clicking them. We also have ...

RE: Proofpoint URL Defense

Posted By Nicole McLain 02-15-2023 03:22:04 PM
Found In Egroup: Cybersecurity \ view thread
We let URL defense rewrite everything coming in from external sources. ------------------------------ Nicole McLain Information Security Engineer University of Denver ------------------------------

RE: Compliance Training

Posted By Nicole McLain 02-15-2023 08:04:16 AM
Found In Egroup: Cybersecurity \ view thread
We use the Proofpoint security education platform for training and phishing simulation. We heavily customize all the trainings though and then export them to our employee LMS. ------------------------------ Nicole McLain Information Security Engineer University of Denver -------------------------- ...

RE: Multifactor campus exemptions

Posted By Nicole McLain 02-09-2023 08:01:26 AM
Found In Egroup: Cybersecurity \ view thread
We've rolled out DUO to everyone on campus. We don't allow location exceptions, but we do let people "remember me". Personally I would love to remove this, But we will probably have to do it slowly by reducing the time allowed. ------------------------------ Nicole McLain Information Security Engineer ...

RE: Crowdstrike

Posted By Nicole McLain 01-27-2023 03:17:15 PM
Found In Egroup: Cybersecurity \ view thread
HI David! This is good to know - when we first launched CS this was not an option, so it must have been added later on and I missed the release notes! ------------------------------ Nicole McLain Information Security Engineer University of Denver ------------------------------

RE: Crowdstrike

Posted By Nicole McLain 01-25-2023 02:26:34 PM
Found In Egroup: Cybersecurity \ view thread
Hi David, To my knowledge CrowdStrike doesn't remove malware, however that may be a feature that we do not subscribe to. It will block the action and quarantine the file for highly malicious files, however for things like PUPs it doesn't remove. Specifically for us for audits - machines that are running ...

RE: Crowdstrike

Posted By Nicole McLain 01-25-2023 07:48:08 AM
Found In Egroup: Cybersecurity \ view thread
We've been a CS shop for several years. Very happy with it. We use workflows to isolate endpoints with critical alerts (but be sure to create a group with your servers in it and exclude them from something like this, otherwise you will bring everything down). The only issue that we have it that is always ...

RE: Workstation Security Remediation Process

Posted By Nicole McLain 12-21-2022 07:47:31 AM
Found In Egroup: Cybersecurity \ view thread
This really depends on the infection - we tailor our response to the infection. All of University assets have CrowdStrike on them, so we generally have a good idea of what is actually going on. The most common thing we see is malicious browser extensions, but we have recently seen some more nefarious ...

RE: Free National Cybersecurity Awareness Month video

Posted By Nicole McLain 09-09-2022 09:25:10 AM
Found In Egroup: Cybersecurity \ view thread
Definitely interested! thank you! Nicole McLain University of Denver ------------------------------ Nicole McLain Information Security Engineer University of Denver ------------------------------